Overview

overview

10

Static

static

10

poza cu ma...ne.exe

windows7-x64

7

poza cu ma...ne.exe

windows10-1703-x64

7

poza cu ma...ne.exe

windows11-21h2-x64

7

poza cu ma...ne.exe

android-11-x64

creal.pyc

windows7-x64

3

creal.pyc

windows10-1703-x64

3

creal.pyc

windows11-21h2-x64

5

creal.pyc

android-11-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    poza cu mama lui arcane.exe

  • Size

    17.1MB

  • Sample

    240307-vrf5dahd6t

  • MD5

    f1bbf467e3d5be91fba70f4fa50cb934

  • SHA1

    f46aef12a7b2303b1ad751f4ada32e5171de113e

  • SHA256

    4026e330b06e54fb334314ecac5ceca07830967a84f11bd8803a20164653109b

  • SHA512

    bbc7b341546a504a924e70c4ce190217ff9f2fc894da07eb6851826c68b1bf2bb0ebc8f4bacdc70e7bdb915e3b0144d80feccf4ae6d19789e52fa6e3e48f4e28

  • SSDEEP

    393216:HEkZQP2CSo03kiJo8L2Vmd6m5FTodIn+LH/+z0Uv7PVWqrKbf:HhQP29o03kiu8yVmdjnB3G

Score
10/10
crealstealerandroidpyinstallerspywarestealer

Malware Config

Targets

    • Target

      poza cu mama lui arcane.exe

    • Size

      17.1MB

    • MD5

      f1bbf467e3d5be91fba70f4fa50cb934

    • SHA1

      f46aef12a7b2303b1ad751f4ada32e5171de113e

    • SHA256

      4026e330b06e54fb334314ecac5ceca07830967a84f11bd8803a20164653109b

    • SHA512

      bbc7b341546a504a924e70c4ce190217ff9f2fc894da07eb6851826c68b1bf2bb0ebc8f4bacdc70e7bdb915e3b0144d80feccf4ae6d19789e52fa6e3e48f4e28

    • SSDEEP

      393216:HEkZQP2CSo03kiJo8L2Vmd6m5FTodIn+LH/+z0Uv7PVWqrKbf:HhQP29o03kiu8yVmdjnB3G

    Score
    7/10
    spywarestealer

    • Drops startup file

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Accesses cryptocurrency files/wallets, possible credential harvesting

      spyware

    • Looks up external IP address via web service

      Uses a legitimate IP lookup service to find the infected system's external IP.

    behavioral1behavioral2behavioral3behavioral4

    • Target

      creal.pyc

    • Size

      32KB

    • MD5

      eb61d23367de0ebe3776c297b3af611b

    • SHA1

      68308d6df71bc573e56d3023fdfc7729e05f0dd4

    • SHA256

      2fa9d7b0f42e63994c1f96c6cfae62f9c3491a53605a1d2212309cd8cdd132a3

    • SHA512

      6fce08320a5f37ba6da9a082634a3b92040c58f8846fed09c000604474f94f09aebf88c2c1cadbea63fd8762d6aa83725a700707159b0e43748447bb46f6a5f3

    • SSDEEP

      768:L8Dnrt2VsfNEiyAuAfKFMrRtfqtvEwS7bnjerAroaHDsIAvN8YC06X:IjrNe3aKFcfDwS7fOPviYD6X

    Score
    5/10

    • Drops file in System32 directory

    behavioral5behavioral6behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks